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Field of the Invention 

The present invention relates to a method and 
apparatus for eecure data transfer between a communication 
device and an application server in a wireless network, and 
more particularly to a method for eecure data transfer 
between a communication device, provided with a SIM card, 
and an application server in a wireless network using WAP 
(Wireless Application Protocol) for the data transfer, 
wherein said SIM card contains a secret/private key, an 
algorithm for signing of data, a SAT application for 
handling the signing dialogue and the signing of data. 

Description of the Prior Art 

Several protocols for data transfer over wireless 
networks have been proposed by different mobile phone 
manufactures. Ericsson, Motorola, Nokia Mobile Phones, and 
Uniwired Planet have developed a joint standard called 
Wireless Application Protocol (WAP) . The purpose of the 
Wireless Application Protocol is to provide operators, 
infrastructure and terminal manufactures, and content 
developers a common environment enabling development of 
advanced services for digital mobile phones and other 
wireless terminals or portable communication devices For 
example, the WAP enables e-mail and internet access from a 

digital mobile phone. . 

certain services and WAP applications provided via 
internet, such as ordering, order confirmations. 
services, etc and associated transactions require a hxgh 
level of security- 



01/10/99 16:42 STROM 8. (3^IK55DN -» PU »JFF 8, KflSSflN _ M?. 146 004 

Ink. t Patent- och reg.verket 

1999 "10" 0 xllf-10-91. * i\»WMC\l>oe\»\lM«0"-«<* »* 

Huvudfaxen Kasson 



WO 99/01848 discloses a procedure, which is 
applicable for the control of keys to applications making 
use of the subscriber identity module (SIM) in a mobile 
phone and for the control of license agreements concerning 
5 the use of such applications. Further, the procedure 
provides data security that allows safeguarding of 
interests of the operator, module manufacturer, application 
oevelopers and users of applications. A key list comprising 
one or more application-specific keys i* stored in the 
,0 subscriber identity module. A corresponding list *. also 
stored in an application control server connected to the 
network, which takes care of the control of applications 
stored in subscriber identity modules. The application 
stored in the subscriber identity module is activated 
is and/or closed by using the key list. 

DE-A1-196 16 575 describes a method for running 
special applications, such as a virtual charge card, 
entirely or paxcly. in a SIM. Further, it is suggested 
using the SIM toolkit as a means for communication. 
20 Security is provided by means of the conventional security 
means and procedure of the SIM-card. For example, an ant 
theft security for the special application authorisation 
and the service data in combination with one or more PIN- 
codes of the SIM-card. 
25 wo 98/37663 discloses a method for checking 

authorisation incorporating a way to impart to a smart card 
an encryption key and including a way to cause a micro- 
P-™. by Jan. of the encryption key and 
number to perform a calculation whose result comprises a 
30 flrtt signature. The signature together with said number 
Ite transferred to a^ye 

ray'™* ^uLrTsT^- » carry out the 
calculation to obtain the signature and then to compare the 
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latter signature with the first signature for the 
verification. 

In the above mentioned methods all information 
transfer is done through SAT (SIM Application Toolkit) 
applications, in which the security solution also is 
implemented. 

Another way of solving the security problem is to 
provide one-time password pads, wherein a -new- password is 
entered via the key pad of the mobile phone or the 
communication device every time an application is used. 

There are several problems and disadvantages 
associated with the above mentioned prior art solutions^ 
The security level is to low for higher values: passwords 
could be discovered and the password has to be entered 
ro anually making WAP applications very user -frxendly 
compared to for example pure SAT applications and, 
course, the password has to be remembered. 

Summary of the Invention 

It i. an oMect of the preeent invention to provide 
nn proved method and eyaxem £or exerting ****** data 
transfer between a communication device, provided »i«>. 
.mart card, such a. a SIM card, and an appUcat.o. ™ 
1„ a -irel.ee net-or* ueing a data tranefer protocol «•> 
s a. W twireleae Application Protocol) for the data 

tranBf ^le i. accompliehed by a method and .y.te„ according 
to the invention for executing eecure "£££ZZ£ 
epplication level £~^j£T£ ^ card 
„ on mobile phonee " ^ al9orl thm for aigning of 

contain, a ^"^"on ^r handling the signing 
data, a signing application . . • aM ii_ 

= data. A communiction appn 

dialogue and the signing of data, a 
cation, such as a WAP application, is in-6.Ha* 
35 communication device enabling congestion with the 
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application server by means of a dialogue, and information 
browsing on the server is initiated from the communication 
device, wherein data are transferred between the server and 
the communication device. Further, a request requiring a 
secure transaction of data ia send from the communication 
device to the server, and an agreement proposal for the 
secure transaction is send from the server to the communi- 
cation device. If the agreement proposal is considered 
acceptable, the agreement proposal is returned to a 
security adapter. The WAP application in the communication 
device is suspended or terminated. Details of the 
transaction to be secured and a sign request are entered 
into at least a message, such as SMS or USSD packets, from 
the adapter to the smart card in the communication device 
; ia order to activate the signing application. The 

If the transaction and a prompt for an accept are displayed 
on the communication device. If the transaction is 
accepted, the signing application signs the data to be send 
with the secret/ private key by using the algorithm the 
a signed data are send from the communication devxce to the 
security adapter via messages. The signature is 
and the verified signed data are send to the server for 
final execution of the transaction. 

Another object of the invention is to provide an 
,S apparatus for connection to a wireless network for^ 

monitoring the data transfer between the communication 

device and the adapt er according 

This is accomplished by a security 
co the invention, providing a high level of security in 

. , , ,™ level for communication 

30 data transfer on the application level xor 

applications executing on communication devices 

An advantage of the pr«ent invention is that a hig 
lavel of security in the data transfer is ^ 
oration with conventional WAP *^ a ^J?^ 
35 advantage is that the application on the SIM card can 
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made very thin and flexible, because it only has to handle 
8 igning of data and no information or menu handling. 
Further, the system handling the information browsing and 
the system handling the security of the transitions are 
S separated and. therefore. they can be uppdated and changed 
independently . 

Brief Description of the Drawings 

Other objects, advantages and featurea of the 
I0 invention -ill become more apparent from the ^llowxng 
detailed description when taken in conjunction with the 
accompanying drawings, in which netwo rk 
FIG 1 illustrates a first embodiment of a network 
configuration comprising a security adapter according to 

15 the invention, wA|rtjA ^ v 
FIG 2 illustrates a second embodiment of a network 
configuration comprising a eecurity adapter according to 

the invention. . 

FIG 3 is a flowchart of a first embodiment of the 

20 method according to the invention, and 

FIG 4 is a flowchart of a second embodiment of the 
method according to the invention. 

Detailed Description of the Invention 

2s With reference to FIG l of the drawing, there is 

shown a first embodiment of a network con f ^ 
executing secure data transfer between a 
-ice. such as a mobile phon. ^--^"ion 
in a wireless network using WAP «** iguration 

- -tocol> -^-^^ -U. 
PbTeT! JoZZ lZ a subscriber identity — 

communications) mobile communication network 2 
35 Additionally, the SIM card contains a secret /private key. 
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an algorithm for signing of data to be transferred, and a 
SAT (SIM Application Toolkit) application for handling the 
signing dialogue and the signing of data. The GSM network 2 
is connected to the Internet 3 via a WAP-gateway 4. 
5 Further, an application server 5 providing WAP applications 
is also connected to the internet 3. Additionally, a 
security adapter 6 according to the invention is connected 
to the WAP-gateway for monitoring the communication between 
the mobile phone 1 and the application server 5. 
10 A second embodiment of a network configuration 

comprising a security adapter 6 according to the invention 
is shown in PIO 2. In this embodiment of the network 
configuration the security adapter S is connected to the 
application server 5. 
15 FIG 3 is a flowchart of a first embodiment of the 

method according to the invention for executing secure data 
transfer between a mobile phone and an application server 
in a wireless network. 

in a first step 301, a WAP application, such as a 
20 microbrowse, is installed on the mobile phone 1 enabling 
communication with the application server 5 by means of a 

WAP dialogue. 

A conventional information browsing session on the 
server is initiated either by a user (aubacriber) from the 
25 mobile phone l or the application server 5 in step 302. 
wherein data are transferred to/from the mobile phone 1, 
over the GSM network 2 interfacing the Internet via the WAP 
gateway, from/to the application server 5. For example, a 
user browses to a web site providing information accessible 
30 via a WAP dialogue from the mobile WAP phone 1- Th« .site 

belongs to a bookstore offering a service wherein books can 
be bought directly from the site. A book is selected by the 
user from a list of books presented on the site. When the 
user decides to bye the book he selects -order" from an 
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order menu of the site. Thia action initiates a sequence of 
operations . 

First a request requiring a secure transaction of 
data is send from the mobile phone to the application 
server 5 or from the application .erver to the mobile phone 
1 in step 303. An agreement proposal for the secure 
transaction is send from the server 5 to the mobile phone 
in step 304- If the agreement proposal is considered 
acceptable by the user in step 305. the agreement proposal 
is send to the security adapter 6 in step 306, and the WAP 
application in the communication device is suspended or 
terminated in step 307. , „ 

Details of the transaction to he secured and a sign 
request are entered into at least one SMS or USSD packet by 
the security adapter 6 in step 308. The SMS packet (s) » 
send from the security adapter 6 to the SIM card in the 
mobile phone in order to activate the SAT application in 
step 309. The details of the transaction and a prompt for 
an accept from the user are displayed on the communication 
device in step 310. If the transaction is accepted » step 
311. the SAT application signs the data to be send with the 
secret/private key by using the algorithm in 3ia ' 

The signed data is send from the communication device 
! to the security adapter 6 via SMS or USSD packets in step 
,5 3X3 . The security adapter 6 forwards the signature for 
verification in an entity, such as a backend system, 
operatives connected to the server 5 in step 314, and the 
verified signed data is send to the server for the final 
execution of the transaction in step 31S. 
30 A flowchart of a second embodiment of the method 

according to the invention is shown in FIG 4 A WAP 
application is installed on the mobile phone 1 enabling 
communication with the application server 5 by means of a 
WAP dialogue in step 401- 



81/10/39 16:42 

He t Patent- och reg.vericet 



STROM & 



IKSSON -> PU 4JFF & KfiSSAN 
+4640237897 



NR. 146 



018 



1999 -10- Q,l la-ox ri\fDsuevnae\»\>n«ei>.4ae JA 
Huvudfaxen Kassan 



10 



15 



Information browsing on the server 5 is initiated 
from either the application server 5 or the mobile phone i, 
wherein data are transferred over the network between the 
application server 5 and the mobile phone 1 in step 402- 
Similar to the first embodiment described above, a 
request requiring a secure transaction of data is send 
either from the mobile phone 1 to the application server 5 
in step 403, or from the application server S to the mobile 
phone 1. However, in this embodiment of the invention an 
agreement proposal for the secure transaction is send from 
tne server 5 directly to the security adapter 5 in step 
404, and the WAP application in the communication device is 
suspended or terminated in step 405. 

Then, details of the transaction to be secured and a 
sign request are entered into at least one SMS or OSSD 
packet in step 406, the at least one packet is send from 
the security adapter 6 to the SIM card in the communication 
device 1 in order to activate the SAT application in step 
407. Further, the details of the transaction are displayed 
on the mobile phone 1 and it is prompted for an accept from 
the user in step 408. Thus, if the agreement proposal is 
considered acceptable and the transaction is accepted in 
step 409, tne SAT application signs the data to be send 
with the secret/private key by using the algorithm in step 
25 410. 

The signed data is send from the mobile phone 1 to 
the security adapter via SMS or USSD packets in step 411, 
the signature is verified in an entity operatively 
connected to the server S in step 412. and the verified 
signed data is send to the server for the final execution 

of the transaction 413 . 

It is to be understood that even though numerous 
features and advantages of the present invention have been 
set forth above, together with details of the configuration 
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and function of the invention, the disclosure is illu- 
strative only. 

For example, in alternative embodiments of the 
invention the security application on the SIM can be 
activated either directly from the mobile phone or from a 
bluetooth connection. In theeee cases the answer could be 
stored in an Elementary File on the SIM card for later 
retrieval- Further, this should be combined with another 
Elementary File containing the status of the action. 

In another embodiment of the invention a more generic 
solution for handling the dialogue with the user is 
implemented. A command interpreter implemented on the SIM 
card is used, allowing more dynamic downloading/updating of 
commands defining the application that communicates with 

15 the user. 

In an alternative embodiment of the network 
configuration any communication device having transmitting 
/receiving capability, such as a portable computer, can be 
provided with a smart card for secure data transfer over a 

20 wireless network. 

in still another embodiment of the invention the 
mobile phone have means whereby the user can be assured 
that he is really communicating directly with the security 
application and not with an application impersonating the 

25 real application. This is implemented as a particular icon, 
character, font, colour etc only available to certain 
applications or the operating system in the phone. 
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CLAIMS 

X. A method for executing securB data transfer 
between a communication device (1) - provided with a smart 
card - and an application server (S) using a data transfer 
protocol for the data transfer In a wireless network (2,3), 
said smart card containing a secret /private key, an 
algorithm for signing of data, a signing application for 
handling the signing dialogue and the signing of data, 

wherein a communication application is installed on 
the communication device (1) enabling communication with 
che application server (5) by means of a dialogue (301) , 
and 

information browsing on the server (5) is initiated 
from either the application server (5) or the communication 
device (l) . wherein data are transferred over the network 
between the application server (5) and the communication 

device (D (302) . 

characterised in that 

a request requiring a secure transaction of data is 
send either from the communication device (l) to the 
application server (5) (303) . or from the application 
server (S) to the communication device (1), 

an agreement proposal for the secure transaction is 
send from the server (5) to the communication device (1) 
25 (304) , 

if the agreement proposal is considered acceptable 
(305) , the agreement proposal is send to a security adapter 
(6) connected to the network (3) (306). 

details of the transaction to be secured and a sign 
request are entered into at least one message (308), 

the at least one message is send from the security 
adapter (S) to the smart card in the communication device 
(l) in order to activate the signing application (309) , 

the details of the transaction and a prompt for an 
accept are displayed on the communication device (310) , 
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if the transaction is accepted (311) , the signing 
application signs the data to be send with the 
secret /private key by using the algorithm (312] , 

the signed data is send from the communication device 
(1) to the security adapter {€) via messages (313) , 

the signature is verified in an entity operatively 
connected to the server (S) (314) , and 

the verified signed data is send to the server for 
the final execution of the transaction (315) . 

2. A method for executing secure data transfer 
between a communication device (1) - provided with a smart 
card - and an application server (5) using a data transfer 
protocol for the data transfer in a wireless network (2,3), 
said smart card containing a secret /private key. an 
algorithm for signing of data, a signing application for 
handling the signing dialogue and the signing of data, 

wherein a communication application is installed on 
the communication device (1) enabling communication with 
the application server (5) by means of a dialogue (401) , 
and 

information browsing on the server (5) is initiated 
from either the application server (5) or the communication 
device (1). wherein data are transferred over the network 
between the application server (5) and the communication 

device (1) <402) , 

characterised in that 

a request requiring a secure transaction of data is 
send either from the communication device (l) to the 
application server (5) 1403), or from the application 
server (S) to the communication device Ul . 

an agreement proposal for the secure transaction is 
send from the server (5) to a security adapter (5> 
connected to the network (3) (404) , 
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details of the transaction to be secured and a sign 
request are entered into at least one message (406) , 

the at least one packet is send from the security 
adapter (6) to the smart card in the communication device 
5 (1) in order to activate the signing application (407) , 
the details of the transaction and a prompt for an 
accept are displayed on the communication device (1) (408) , 

if the agreement proposal is considered acceptable 
and the transaction is accepted (409) , the signing 
10 application signs the data to be send with the 
secret/private key by using the algorithm (410) , 

the signed data is send from the communication device 
(1) to the security adapter via messages (411). 

the signature is verified in an entity operatively 
15 connected to the server (5) (412) , and 

the verified signed data is send to the server for 
the final execution of the transaction (413) * 

3. A method according to claim 1 or 2, characterised 
20 in that the smart card is a SIM card (subscriber identity 

module) , the data transfer protocol is the WAP (Wireless 
Application Protocol) , the signing application is a SAT 
(SIM Application Toolkit) application, the communication 
application is a WAP application, and the message is at 
25 least an SMS or USSD packet. 

4 . a method according to any of claims 3 
characterised in that the WAP application in the 
communication device is suspended or terminated when the 

30 SAT application is activated (307,405). 

5. A system for executing secure data transfer 
between a communication device (1) and an application 
server (5) in a wireless network (2,3), said system 

35 comprising a wireless network, a communication device (1) 
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provided with a smart card containing a secret /private key, 
an algorithm for signing of data, a signing application for 
handling the signing dialogue and the signing of data - 
connected to the network (2) , and an application server (5) 
5 using a data transfer protocol for the data transfer 

connected to the network O) . characterised by a security 
adapter (6) connected to the network (2,3) for monitoring 
the data transfer between the communication device (1) and 
the application server (S) , wherein said security adapter 

10 (6) comprises: 

means for receiving an acceptable agreement proposal 
for a secure transaction from the communication device (1) . 

means for entering details of the transaction to be 
secured and a sign request into at least one message, 

means for sending the at least one packet from the 
security adapter to the smart card in the communication 
device (1) in order to activate the signing application, 

means for receiving signed data send from the 
communication device (1) via messages, and 

means for sending the signed data for verification 
and then to the application server (5) for the final 
execution of the transaction. 



15 
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6. A system according to claim S. characterised in 
that the smart card is a SIM card (subscriber identity 
module) , the data transfer protocol is the WAP (Wireless 
Application Protocol), the signing application is a SAT 
(SIM Application Toolkit) application, and the message is 
at least an SMS or 0SSD packet. 

7. A system according to claim S or 6, characterised 
in that said network comprises a mobile telephone network 
(2) for connection to the communication device (D , the 
internet (3) for the connection to the application server 
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(S) , and a WAP gateway (4) connecting the mobile telephone 
network (2) to the internet (3) - 

8. A system according to claim 7, characterised in 
that said security adapter (6) ia connected to the WAP 
gateway (4) . 

9. A system according to any of the claims 5-7, 
characterised in that said security adapter (6) is 
connected to the application server (5) . 



10. A system according to any of the claims 5-9, 
characterised in that said communication device is a mobile 
phone (1) or a portable computer having transmitting 

15 /receiving capability. 

11. A system according to claim 10, characterised in 
that the mobile phone comprises means for displaying a 
particular icon, character, font, or colour connected to 

20 certain applications or the operating system in the phone, 
wherein the user can be assured that he is really 
communicating directly with the security application. 

12. A security adapter for connection to a wirless 
network (2.3) for monitoring the data transfer between a 
communication device <x> and an application server (5) 
connected to the network, characterised by 

means for receiving an acceptable agreement proposal 
for a secure transaction from the communication devxce (1) . 

means for entering details of the transaction to be 
secured and a sign request into at least a <"""*•- 

means for sending the at least one message from the 
security adapter (6) to a smart card in the communication 
device (D in order to activate a signing application. 
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means for receiving signed data send from the 
communication device (1) via messages, and 

means for sending the signed data for verification 
and then to the application server (5) for the final 
S execution of the transaction. 
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IS 



ABSTRACT 

A method for executing secure data transfer between 
a communication device (1) and an application server (S) in 
a wireless network (2,3). wherein a request requiring a 
secure transaction of data is send from ether the 
communication device (1) or the server (S) (303), an 
agreement proposal for the secure transaction is send to 
the communication device (X) (304) . if the agreement 
proposal is considered acceptable (305) . the agreement 
proposal is send to a security adapter (6) (306) - Details 
of the transaction are entered into a message (308) and 
eend to a smart card in order to activate a signing 
application (30 9) in the smart card. The details of the 
transaction are displayed on the communication device 
(310), and if the transaction is accepted (311) , the 
signing application signs the data and send it to the 
security adapter (6) via messages (313). the signature xs 
verified, and the data is send to the server (315) - 
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